DomainHighVerifiedSignal 89/100
usb-helpnow.com
Location
United StatesFirst Seen
Apr 17, 2026
Last Seen
Jun 2, 2026
Found in 7 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
89%
Signal Score
89 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
7 reports89% confidence
7
Source reports
89%
Confidence score
Category tags
blocklistcryptocryptocurrencydrainerfraudindicatornetworknorth americaphishingresearchedscamscams & fraudunited states
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
· Peak: 2026-06-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The identified Indicator of Compromise (IOC) `usb-helpnow.com` carries a high threat score of 89.08, indicating a significant and active risk to organizational security. Its presence in multiple prominent threat intelligence feeds, including phishing-specific lists, strongly suggests its involvement in malicious activities such as phishing, credential harvesting, or malware distribution. If left unaddressed, compromise through this domain could lead to unauthorized access, data exfiltration, fin…
Threat ScoreHigh Risk
89
SIGNAL
Signal Score
89%
Confidence
7
Reports
First seenApr 17, 2026
Last seenJun 2, 2026
Verified IOC
VirusTotal
Not checked
WHOIS
- registrar
- PDR Ltd. d/b/a PublicDomainRegistry.com
- description
- Real-time feed of phishing, crypto drainer, and scam domains detected by PhishDestroy (phishdestroy.io). Updated hourly. 108K+ domains tracked, 55K+ currently active. Source: github.com/phishdestroy/destroylist
- domain rank
- -1
- raw
- Admin City: Burlington Admin Country: US Admin Email: [email protected] Admin Organization: Privacy Protect, LLC (PrivacyProtect.org) Admin Postal Code: 01803 Admin State/Province: MA Creation Date: 2026-04-14T12:45:02Z DNSSEC: Unsigned DNSSEC: unsigned Domain Name: USB-HELPNOW.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: BRADEN.NS.CLOUDFLARE.COM Name Server: GEORGIA.NS.CLOUDFLARE.COM Name Server: braden.ns.cloudflare.com Name Server: georgia.ns.cloudflare.com Registrant City: 7ba6c62985322478 Registrant Country: US Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: 3432650ec337c945 Registrant Name: edeae57e15fec50a Registrant Organization: b61af69881455ade Registrant Phone Ext: 3432650ec337c945 Registrant Phone: dbbc67aba64dff83 Registrant Postal Code: 6a048084caacaa97 Registrant State/Province: 36e414cc8874c746 Registrant Street: 53b107811872c5e2 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.2013775952 Registrar IANA ID: 303 Registrar Registration Expiration Date: 2027-04-14T12:45:02Z Registrar URL: http://www.publicdomainregistry.com Registrar URL: www.publicdomainregistry.com Registrar WHOIS Server: whois.PublicDomainRegistry.com Registrar WHOIS Server: whois.publicdomainregistry.com Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com Registry Admin ID: Not Available From Registry Registry Domain ID: 3087856189_DOMAIN_COM-VRSN Registry Expiry Date: 2027-04-14T12:45:02Z Registry Registrant ID: Not Available From Registry Registry Tech ID: Not Available From Registry Tech City: Burlington Tech Country: US Tech Email: [email protected] Tech Organization: Privacy Protect, LLC (PrivacyProtect.org) Tech Postal Code: 01803 Tech State/Province: MA Updated Date: 2026-04-14T13:56:16Z Updated Date: 2026-04-14T13:56:17Z
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 1 month ago · Last seen 10 days ago
Appeared in 7 threat reports